asp.net-core – 使用IdentityServer4生成访问令牌,无需密码
发布时间:2020-12-15 20:38:07 所属栏目:asp.Net 来源:网络整理
导读:我使用ROPC流创建了使用IdentityServer4保护的ASP.NET Core WebApi(使用此示例: https://github.com/robisim74/AngularSPAWebAPI). 如何在没有密码的情况下从服务器手动生成access_token? 解决方法 [HttpPost("loginas/{id}")][Authorize(Roles = "admin")
|
我使用ROPC流创建了使用IdentityServer4保护的ASP.NET Core WebApi(使用此示例:
https://github.com/robisim74/AngularSPAWebAPI).
如何在没有密码的情况下从服务器手动生成access_token? 解决方法[HttpPost("loginas/{id}")]
[Authorize(Roles = "admin")]
public async Task<IActionResult> LoginAs(int id,[FromServices] ITokenService TS,[FromServices] IUserClaimsPrincipalFactory<ApplicationUser> principalFactory,[FromServices] IdentityServerOptions options)
{
var Request = new TokenCreationRequest();
var User = await userManager.FindByIdAsync(id.ToString());
var IdentityPricipal = await principalFactory.CreateAsync(User);
var IdServerPrincipal = IdentityServerPrincipal.Create(User.Id.ToString(),User.UserName,IdentityPricipal.Claims.ToArray());
Request.Subject = IdServerPrincipal;
Request.IncludeAllIdentityClaims = true;
Request.ValidatedRequest = new ValidatedRequest();
Request.ValidatedRequest.Subject = Request.Subject;
Request.ValidatedRequest.SetClient(Config.GetClients().First());
Request.Resources = new Resources(Config.GetIdentityResources(),Config.GetApiResources());
Request.ValidatedRequest.Options = options;
Request.ValidatedRequest.ClientClaims = IdServerPrincipal.Claims.ToArray();
var Token = await TS.CreateAccessTokenAsync(Request);
Token.Issuer = "http://" + HttpContext.Request.Host.Value;
var TokenValue = await TS.CreateSecurityTokenAsync(Token);
return Ok(TokenValue);
}
对于新发布的IdentityServer 2.0.0,代码需要进行一些修改: [HttpPost("loginas/{id}")]
[Authorize(Roles = "admin")]
public async Task<IActionResult> LoginAs(int id,[FromServices] IdentityServerOptions options)
{
var Request = new TokenCreationRequest();
var User = await userManager.FindByIdAsync(id.ToString());
var IdentityPricipal = await principalFactory.CreateAsync(User);
var IdentityUser = new IdentityServerUser(User.Id.ToString());
IdentityUser.AdditionalClaims = IdentityPricipal.Claims.ToArray();
IdentityUser.DisplayName = User.UserName;
IdentityUser.AuthenticationTime = System.DateTime.UtcNow;
IdentityUser.IdentityProvider = IdentityServerConstants.LocalIdentityProvider;
Request.Subject = IdentityUser.CreatePrincipal();
Request.IncludeAllIdentityClaims = true;
Request.ValidatedRequest = new ValidatedRequest();
Request.ValidatedRequest.Subject = Request.Subject;
Request.ValidatedRequest.SetClient(Config.GetClients().First());
Request.Resources = new Resources(Config.GetIdentityResources(),Config.GetApiResources());
Request.ValidatedRequest.Options = options;
Request.ValidatedRequest.ClientClaims = IdentityUser.AdditionalClaims;
var Token = await TS.CreateAccessTokenAsync(Request);
Token.Issuer = HttpContext.Request.Scheme + "://" + HttpContext.Request.Host.Value;
var TokenValue = await TS.CreateSecurityTokenAsync(Token);
return Ok(TokenValue);
}
(编辑:李大同) 【声明】本站内容均来自网络,其相关言论仅代表作者个人观点,不代表本站立场。若无意侵犯到您的权利,请及时与联系站长删除相关内容! |
相关内容
- asp.net-mvc – ASP.NET MVC 3更改摘要
- asp.net-mvc-4 – ASP.NET MVC 4自定义权限属性 – 如何将未
- asp.net – 用于Active Directory帐户的Oauth 2令牌
- asp.net-mvc – 带有淘汰赛的EditorFor HTML Helper
- asp.net – 你对Windows Workflow Foundation有什么经验?
- 如何调试asp.net mvc 4源代码?
- asp.net – 为什么压缩ScriptResource.axd,即使禁用了IIS压
- Asp.NET Core+ABP框架+IdentityServer4+MySQL+Ext JS之验证
- entity-framework – 在viewbag中传递查询结果
- asp.net-mvc – 客户端表单验证不适用于MVC中的模态对话框
推荐文章
站长推荐
- asp.net-core – 无法在VS2015中定位netstandard
- asp.net-mvc – 部分视图模型无法解析
- 通过ASP.NET菜单控件禁用javascript生成
- asp.net – Azure网站上HTTP 1.0代理请求的gzip压
- asp.net-mvc – 强类型视图与动态类型视图
- .net core入门-项目启动时报错:HTTP Error 502.
- 优化asp.net身份GetUserManager
- asp.net – 在Windows Azure上的HTTP处理程序中是
- ASP.NET 性能优化之反向代理缓存使用介绍
- asp.net – 如何保护web.config中的connectionst
热点阅读